Java .net 包里的 Httpclient 如何连接代理并进行隧道验证

2018-12-08 22:05:13 +08:00
 lqw3030

照着官网的 demo,但返回的是 null

 Authenticator authenticator=new Authenticator() {
            @Override
            public PasswordAuthentication requestPasswordAuthenticationInstance(String host, InetAddress addr, int port, String protocol, String prompt, String scheme, URL url, RequestorType reqType) {
                return new PasswordAuthentication("xxxx", "xxxx".toCharArray());
            }
        };

 HttpClient client = HttpClient.newBuilder()
                .version(HttpClient.Version.HTTP_1_1)
                .followRedirects(HttpClient.Redirect.NORMAL)
                .connectTimeout(Duration.ofSeconds(20))
                .proxy(ProxySelector.of(new InetSocketAddress("xxxxx",xxxx)))
                .authenticator(authenticator)
                .build();
        HttpRequest request = HttpRequest.newBuilder()
                .uri(URI.create(sinaUrl.getUrl()))
                .header("Proxy-Authorization","Basic HIPD76B28I854FKD:D46CFF91FF69AFEF")
                .header("CooKie", sinaRequestCache.getCookies())
                .headers(sinaRequestCache.getHeaders())
                .build();
        HttpResponse<String> httpResponse = client.send(request, HttpResponse.BodyHandlers.ofString());

求教,stackoverflow 上有个同样的问题,但是没有人回答

1913 次点击
所在节点    Java
2 条回复
wdlth
2018-12-08 23:20:05 +08:00
Proxy-Authorization 那个用户名密码要 Base64 编码,和 Basic Auth 一样的。
lqw3030
2018-12-08 23:38:53 +08:00
@wdlth 解决了,验证信息应该是没问题。
下面是官方的原话:
Disable Basic authentication for HTTPS tunneling
In some environments, certain authentication schemes may be undesirable when proxying HTTPS. Accordingly, the Basic authentication scheme has been deactivated, by default, in the Oracle Java Runtime, by adding Basic to the jdk.http.auth.tunneling.disabledSchemes networking property. Now, proxies requiring Basic authentication when setting up a tunnel for HTTPS will no longer succeed by default. If required, this authentication scheme can be reactivated by removing Basic from the jdk.http.auth.tunneling.disabledSchemes networking property, or by setting a system property of the same name to "" ( empty ) on the command line.

Additionally, the jdk.http.auth.tunneling.disabledSchemes and jdk.http.auth.proxying.disabledSchemes networking properties, and system properties of the same name, can be used to disable other authentication schemes that may be active when setting up a tunnel for HTTPS, or proxying plain HTTP, respectively.
JDK-8160838 (not public)

大概意思就是从这个版本后默认禁用了 HTTPS 隧道的基本身份验证
解决办法:
1.修改 net.properties 注释掉 jdk.http.auth.tunneling.disabledSchemes=Basic 一行
2.运行时候置空属性 System.setProperty("jdk.http.auth.tunneling.disabledSchemes", "");

但我觉得都不靠谱- -!

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

https://www.v2ex.com/t/515731

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX